cbcvebase.
CVE-2014-3518
published 2014-07-22

CVE-2014-3518: jmx-remoting.sar in JBoss Remoting, as used in Red Hat JBoss Enterprise Application Platform (JEAP) 5.2.0, Red Hat JBoss BRMS 5.3.1, Red Hat JBoss Portal…

medium6.8CVSS 3.1
AVNACMAuNCPIPAP
jmx-remoting.sar in JBoss Remoting, as used in Red Hat JBoss Enterprise Application Platform (JEAP) 5.2.0, Red Hat JBoss BRMS 5.3.1, Red Hat JBoss Portal Platform 5.2.2, and Red Hat JBoss SOA Platform 5.3.1, does not properly implement the JSR 160 specification, which allows remote attackers to execute arbitrary code via unspecified vectors.

Affected

4 ranges
VendorProductVersion rangeFixed in
redhatjboss_enterprise_application_platform
redhatjboss_enterprise_brms_platform
redhatjboss_enterprise_portal_platform
redhatjboss_enterprise_soa_platform